Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft
File: LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft (raw, json)
Hash identifier: e1YIQjFK4F3E5YzfwdxhLWmzapfuV1CSa+WcmGeTZvQ=
Subject key identifier: BB:3D:98:3D:3C:91:C6:D1:E2:74:8C:EA:D0:FB:B9:02:A2:10:51:2C
Authority key identifier: 2C:A3:7D:A9:70:C4:66:45:75:83:BB:E0:2B:2A:0E:72:FB:DC:63:28
Certificate issuer: /CN=2ca37da970c466457583bbe02b2a0e72fbdc6328
Certificate serial: 019D38D35ECE41529BA4D4EFCEA5BFABE498
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKN9qXDEZkV1g7vgKyoOcvvcYyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft
Manifest number: 038B
Signing time: Sun 29 Mar 2026 09:01:09 +0000
Manifest this update: Sun 29 Mar 2026 09:01:09 +0000
Manifest next update: Mon 30 Mar 2026 09:01:09 +0000
Files and hashes: 1: 8nh2nz59r4IDN5IE02ZK_JnePnU.roa (hash: EoqGd1iJrSXTEZ94UblIUe3hHKZv1dQEjjg+tiyKHkY=)
2: CrT-FIs9ETIARmODyPGo6Texbms.roa (hash: VHPhzwyP7ZJaAZF/RLchX9QehGLwEz/Nhb9bbKVLnBE=)
3: LKN9qXDEZkV1g7vgKyoOcvvcYyg.crl (hash: qAaJJ5HqDrrLdrfzTNEdrr3zzmzjoJEZomfsPQA+3BQ=)
4: M1lzEwcwplQSzJYIKHVS3CPULtM.roa (hash: CbzM5ppQIFt899x5QRVS7mcpi5adykj4B/FuVFp7z1c=)
5: PGCypFT7PpbRYHnbnL53seEehQY.roa (hash: uikj8M8pga201KYBaCnBW484YRpO24WaVAwTT3xgXLA=)
6: gpcRZMvvAarNXGnEQk69CRu1kTw.roa (hash: vDgS5AGwOlvvwcg7ps4GbXeY48BReojyPRTXSF9XHHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKN9qXDEZkV1g7vgKyoOcvvcYyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:5e:ce:41:52:9b:a4:d4:ef:ce:a5:bf:ab:e4:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ca37da970c466457583bbe02b2a0e72fbdc6328
Validity
Not Before: Mar 29 09:01:09 2026 GMT
Not After : Mar 30 09:01:09 2026 GMT
Subject: CN=bb3d983d3c91c6d1e2748cead0fbb902a210512c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3b:78:e5:af:1b:ab:d7:9c:ca:0b:e3:61:6f:
b9:cc:ab:da:09:c6:72:79:29:fd:0b:d4:47:bb:f9:
34:49:6c:0a:db:bf:d3:26:5e:f3:38:c8:e4:09:f5:
11:39:03:1e:57:ee:06:4e:4c:dd:4c:45:4b:7c:41:
79:c5:d5:09:d7:44:ea:c9:a0:ef:d6:c3:ee:14:c7:
34:63:2c:39:61:6d:f3:47:39:2b:e4:7c:2b:92:50:
ff:32:fd:44:69:d5:82:99:d5:6e:d5:fa:58:ac:50:
5d:bb:0e:08:31:a8:c6:59:72:5d:8e:5c:32:53:37:
b6:e5:92:d0:79:40:cd:cc:49:b7:86:26:fe:c7:89:
ee:6e:73:33:85:78:70:f0:79:dd:36:10:a8:11:e0:
fa:74:1c:da:02:df:b5:c2:d4:fe:e0:f9:cb:2e:cc:
b2:bd:e0:25:2c:4b:2f:b8:f4:15:34:91:81:12:cf:
01:0a:6d:55:94:66:f4:a5:57:07:1d:14:c0:65:ca:
f7:14:9b:8b:b2:45:69:2f:c0:9c:ff:bc:9c:d5:f8:
0f:2a:79:90:27:46:a3:d3:39:a3:ba:6d:04:f3:d7:
d3:ac:2a:ee:1d:58:02:5e:3b:20:18:fb:0c:b3:b7:
1c:8d:50:0e:45:ce:e0:e6:17:af:aa:64:c5:b9:3b:
af:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3D:98:3D:3C:91:C6:D1:E2:74:8C:EA:D0:FB:B9:02:A2:10:51:2C
X509v3 Authority Key Identifier:
keyid:2C:A3:7D:A9:70:C4:66:45:75:83:BB:E0:2B:2A:0E:72:FB:DC:63:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKN9qXDEZkV1g7vgKyoOcvvcYyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:b8:df:98:84:fd:ef:0c:8b:68:1e:58:b3:d7:69:c4:ed:81:
ce:fb:33:37:c5:9c:d8:56:8a:11:1e:7c:ec:42:e8:01:c5:94:
6c:bd:b0:a0:46:17:2e:dc:9e:ee:59:2a:e2:17:0b:00:29:7c:
aa:7d:07:aa:cd:30:6c:2a:42:94:32:be:07:9e:19:51:ab:b9:
b5:d9:d8:f8:2a:a8:34:71:81:fc:a6:32:4d:36:4a:0b:49:dc:
34:04:04:5a:ab:f0:3c:5f:19:00:6b:51:33:84:43:f2:60:5d:
96:49:c9:8a:2b:df:6b:18:94:08:d4:8c:7f:e4:e7:89:4f:f2:
16:76:d6:aa:ef:7c:35:e3:d6:82:1d:8f:fc:9c:c6:c1:9c:f1:
52:4f:54:98:f8:52:5d:56:ce:a7:1e:93:ac:c9:9d:01:8c:3b:
25:ff:c0:f3:65:40:b6:d9:a6:3c:cf:96:1c:d2:e3:d8:a1:5e:
2a:6f:92:91:0e:68:19:6a:bb:59:ae:10:b4:8f:e0:a0:16:f6:
82:4a:48:51:ca:6a:94:f4:1e:8e:d7:1f:2a:a2:48:3c:c8:a3:
75:48:2a:b3:01:06:d1:c5:01:d7:35:a1:0b:c7:63:f2:86:27:
8b:20:32:70:f6:c1:1b:af:6b:0d:54:07:b3:4c:ff:72:14:35:
07:ec:7b:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04017OQVKbpNTvzqW/q+SYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjYTM3ZGE5NzBjNDY2NDU3NTgzYmJlMDJiMmEwZTcyZmJk
YzYzMjgwHhcNMjYwMzI5MDkwMTA5WhcNMjYwMzMwMDkwMTA5WjAzMTEwLwYDVQQD
EyhiYjNkOTgzZDNjOTFjNmQxZTI3NDhjZWFkMGZiYjkwMmEyMTA1MTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjt45a8bq9ecygvjYW+5zKvaCcZy
eSn9C9RHu/k0SWwK27/TJl7zOMjkCfUROQMeV+4GTkzdTEVLfEF5xdUJ10TqyaDv
1sPuFMc0Yyw5YW3zRzkr5HwrklD/Mv1EadWCmdVu1fpYrFBduw4IMajGWXJdjlwy
Uze25ZLQeUDNzEm3hib+x4nubnMzhXhw8HndNhCoEeD6dBzaAt+1wtT+4PnLLsyy
veAlLEsvuPQVNJGBEs8BCm1VlGb0pVcHHRTAZcr3FJuLskVpL8Cc/7yc1fgPKnmQ
J0aj0zmjum0E89fTrCruHVgCXjsgGPsMs7ccjVAORc7g5hevqmTFuTuvowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLs9mD08kcbR4nSM6tD7uQKiEFEsMB8GA1UdIwQY
MBaAFCyjfalwxGZFdYO74CsqDnL73GMoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEtOOXFYREVaa1YxZzd2Z0t5b09jdnZjWXlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8yNDkyZmQtNmUzNy00NTgyLTg0ZTgt
OGNhMjVmNDg4ZWJmLzEvTEtOOXFYREVaa1YxZzd2Z0t5b09jdnZjWXlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8yNDkyZmQtNmUzNy00NTgyLTg0ZTgtOGNhMjVmNDg4ZWJm
LzEvTEtOOXFYREVaa1YxZzd2Z0t5b09jdnZjWXlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcLjfmIT9
7wyLaB5Ys9dpxO2BzvszN8Wc2FaKER587ELoAcWUbL2woEYXLtye7lkq4hcLACl8
qn0Hqs0wbCpClDK+B54ZUau5tdnY+CqoNHGB/KYyTTZKC0ncNAQEWqvwPF8ZAGtR
M4RD8mBdlknJiivfaxiUCNSMf+TniU/yFnbWqu98NePWgh2P/JzGwZzxUk9UmPhS
XVbOpx6TrMmdAYw7Jf/A82VAttmmPM+WHNLj2KFeKm+SkQ5oGWq7Wa4QtI/goBb2
gkpIUcpqlPQejtcfKqJIPMijdUgqswEG0cUB1zWhC8dj8oYniyAycPbBG69rDVQH
s0z/chQ1B+x7hg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:36 2026 by rpki-client